18 matches found
at.porscheinformatik.zanata:common (>=4.7.0 <=4.7.8), at.porscheinformatik.zanata:stub-server (>=4.7.0 <=4.7.8) +467 more potentially affected by CVE-2014-3490 via org.jboss.resteasy:resteasy-client (>=3.0.0.Final <=3.0.8.Final)
org.jboss.resteasy:resteasy-client MAVEN version =3.0.0.Final, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =4.7.0, =1.1.9, =1.1.11, =1.1.11, =1.3.5 and more Source cves: CVE-2014-3490 Source advisory: OSV:GHSA-QJPQ-5PQ3-43RR...
Security Bulletin: JBoss RestEasy vulnerabilities in IBM Emptoris Contract Management (CVE-2014-3490)
Summary JBoss RestEasy shipped with IBM Emptoris Contract Management is vulnerable to information disclosure. Vulnerability Details CVE ID: CVE-2014-3490 DESCRIPTION: RESTEasy could allow a remote attacker to obtain sensitive information, caused by an incomplete fix related to the processing of X...
Oracle: Security Advisory (ELSA-2014-1011)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : resteasy-3.0.6-3.fc20 (2014-16845)
Security fix for CVE-2014-3490 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Important: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.0.0 security update
Red Hat JBoss Data Virtualization 6.0.0 2015 roll up patch 1, which fixes multiple security issues and various bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base...
Important: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.1.0 update
Red Hat JBoss Data Virtualization 6.1.0, which fixes multiple security issues and various bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...
Important: Red Hat Security Advisory: Red Hat JBoss Operations Network 3.3.0 update
Red Hat JBoss Operations Network 3.2.3, which fixes multiple security issues and several bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...
Red Hat JBoss RESTEasy PARAMETER ENTITY XXE Information Disclosure (CVE-2014-3490)
An information disclosure vulnerability has been reported in Red Hat JBoss RESTEasy. This is due to an incorrectly configured XML parser accepting XML eXternal Entities XXE from the RESTEasy endpoint. A remote unauthenticated attacker may exploit this vulnerability on a web application powered by...
Moderate: Red Hat Security Advisory: Red Hat JBoss Data Grid 6.3.1 update
Red Hat JBoss Data Grid 6.3.1, which fixes one security issue and multiple bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
CentOS Update for resteasy-base CESA-2014:1011 centos7
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-3490
CVE-2014-3490 affects RESTEasy used in Red Hat JBoss EAP 6.3.0 via RESTEasy 2.3.1–2.3.7 and 3.x before 3.0.9 when the parameter resteasy.document.expand.entity.references is not disabled. An XXE condition could allow remote attackers to read arbitrary local files and potentially other unspecified...
Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.3.0 security update
Updated Red Hat JBoss Enterprise Application Platform 6.3.0 packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score,...
Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.3.0 security update
An update for Red Hat JBoss Enterprise Application Platform 6.3.0 that fixes one security issue is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives ...
CentOS 7 : resteasy-base (CESA-2014:1011)
Updated resteasy-base packages that fix one security issue are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
Moderate: Red Hat Security Advisory: resteasy-base security update
Updated resteasy-base packages that fix one security issue are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
Oracle Linux 7 : resteasy-base (ELSA-2014-1011)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-1011 advisory. 2.3.5-3 - Resolves: rhbz1121917 - CVE-2014-3490: XXE via parameter entities Tenable has extracted the preceding description block directly from the Oracle Linux...
RHEL 7 : resteasy-base (RHSA-2014:1011)
Updated resteasy-base packages that fix one security issue are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
RedHat Update for resteasy-base RHSA-2014:1011-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...